Officials at the City of Augusta, Georgia, have been noted by Mayor Garnett Johnson to have not communicated with the BlackByte ransomware operation that took credit for a cyberattack against the city that commenced on May 21, according to The Record, a news site by cybersecurity firm Recorded Future.
Augusta had been demanded to pay a $2 million ransom by BlackByte on May 25 but the city noted the following day that it has not received any demand. BlackByte then threatened on June 4 that it would release all 70GB of data stolen from Augusta. Investigation into the extent of the attack is still underway but the Augusta has since restored several city systems and its 311 service although disruptions continue at its tax commissioner's office.
"Augusta remains committed to taking all appropriate actions to notify any impacted individuals identified, once a determination is made. Our Information Technology Department has executed a path forward to restoration, which has allowed Augusta to continue to serve our residents and visitors, despite our technology challenges," said city officials.
BleepingComputer reports that more than 12 million Android devices have collectively downloaded 18 malicious loan apps dubbed "SpyLoan," which could exfiltrate not only call logs, local Wi-Fi network information, and image metadata but also text messages, location information, and contact lists.
BleepingComputer reports that accounting software provider Tipalti has confirmed launching an investigation into an alleged ALPHV/BlackCat ransomware attack against its network, which was claimed to result in the compromise of over 265 GB of confidential data from the firm and its customers, including Twitch and Roblox.
Ransomware attack lessons, from MOVEit and Doubledrive to MGM/Caesars
Cyber Resilience in the Ransomware and Wiper Era New Strategies for CISOs to Protect
The changing face of ransomware, and how to respond
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news